Rakoo

Single sign-on (SSO) allows your users to log in to the online academy using an external account. In this article, we will discuss what to configure in order to activate SSO integration with Okta. For further information about SSO in general, please refer to <a href="https://support.rakoo.com/en/articles/5772498-setting-up-single-sign-on-sso" rel="nofollow noopener noreferrer" target="_blank">this article</a>.

In order to utilize SSO, users must already be <a href="https://support.rakoo.com/en/articles/4237705-adding-new-users" rel="nofollow noopener noreferrer" target="_blank">added</a> to the online academy. SSO does not create user accounts.

We will provide instructions on how to set up SSO. Please consult Okta’s support for the precise settings.

Step-by-step guide for creating credentials in Okta

To set up SSO via Okta, you can follow the steps below. This Okta <a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#specify-saml-settings" rel="nofollow noopener noreferrer" target="_blank">support article</a> can also assist you in the process.

Obtain our Metadata URL using the following link: <a href="http://saml2.hubper.co/saml/metadata" rel="nofollow noopener noreferrer" target="_blank">http://saml2.hubper.co/saml/metadata</a>

In our metadata, you will find our entityID. This needs to be entered at the <a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#create-a-saml-integration" rel="nofollow noopener noreferrer" target="_blank">Audience URL</a> in the <a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#create-a-saml-integration" rel="nofollow noopener noreferrer" target="_blank">Okta SAML integration</a>.

Configure the attributes to match Rakoo:

- firstname = user.firstname
- lastname = user.lastname
- email = user.email

Next, you will need the credentials from Okta to configure the integration into your online academy. You can find this metadata at the '<a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#specify-your-integration-settings" rel="nofollow noopener noreferrer" target="_blank">sign on</a>' tab at the <a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#specify-saml-settings" rel="nofollow noopener noreferrer" target="_blank">SAML integration</a> in Okta.

1. Obtain our Metadata URL using the following link: <a href="http://saml2.hubper.co/saml/metadata" rel="nofollow noopener noreferrer" target="_blank">http://saml2.hubper.co/saml/metadata</a>
 In our metadata, you will find our entityID. This needs to be entered at the <a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#create-a-saml-integration" rel="nofollow noopener noreferrer" target="_blank">Audience URL</a> in the <a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#create-a-saml-integration" rel="nofollow noopener noreferrer" target="_blank">Okta SAML integration</a>.
 
2. Configure the attributes to match Rakoo:
 
 - firstname = user.firstname
 - lastname = user.lastname
 - email = user.email
 
3. Next, you will need the credentials from Okta to configure the integration into your online academy. You can find this metadata at the '<a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#specify-your-integration-settings" rel="nofollow noopener noreferrer" target="_blank">sign on</a>' tab at the <a href="https://developer.okta.com/docs/guides/build-sso-integration/saml2/main/#specify-saml-settings" rel="nofollow noopener noreferrer" target="_blank">SAML integration</a> in Okta.

Identity Provider Single sign-on URL

It may look like this (example): <a href="https://klantnaam.okta-emea.com/app/iyk5twfdkaYFwYiP29b7/sso/saml/metadata" rel="nofollow noopener noreferrer" target="_blank">https://klantnaam.okta-emea.com/app/iyk5twfdkaYFwYiP29b7/sso/saml/metadata</a>

It may look like this (example): <a href="http://www.okta.com/iyk5twfdkaYFwYiP29b7" rel="nofollow noopener noreferrer" target="_blank">http://www.okta.com/iyk5twfdkaYFwYiP29b7</a>

Optional: Certificate that we can add to the connection

- Identity Provider Single sign-on URL
 It may look like this (example): <a href="https://klantnaam.okta-emea.com/app/iyk5twfdkaYFwYiP29b7/sso/saml/metadata" rel="nofollow noopener noreferrer" target="_blank">https://klantnaam.okta-emea.com/app/iyk5twfdkaYFwYiP29b7/sso/saml/metadata</a>
 
- Audience URL
 It may look like this (example): <a href="http://www.okta.com/iyk5twfdkaYFwYiP29b7" rel="nofollow noopener noreferrer" target="_blank">http://www.okta.com/iyk5twfdkaYFwYiP29b7</a>
 
- Optional: Certificate that we can add to the connection 
 X.509 Certificate

Step-by-step guide for creating the integration in the online academy

You can manage your integrations on the integrations page. You can find this page on the left side of the menu bar: 

- You can manage your integrations on the integrations page. You can find this page on the left side of the menu bar: 

Next, you can select Okta (SAML) at ‘Single sign-on’. This will take you to the settings page.

- Next, you can select Okta (SAML) at ‘Single sign-on’. This will take you to the settings page.

Thereafter, you can enter the credentials obtained from Okta.

- At ‘Integration status’, you can indicate whether the integration is activated or not. 
- The ‘Login with “button" option allows you to decide whether a button should also be displayed in the login screen. Is this option disabled? Then, users can only log in through an external method via SSO (e.g., intranet).

Save the changes to activate the integration.

- Here, you can select ‘Add’.
- Thereafter, you can enter the credentials obtained from Okta.
 - At ‘Integration status’, you can indicate whether the integration is activated or not. 
 - The ‘Login with “button" option allows you to decide whether a button should also be displayed in the login screen. Is this option disabled? Then, users can only log in through an external method via SSO (e.g., intranet).
- Save the changes to activate the integration.

What is SSO?

How do I configure SSO?

Step-by-step guide for creating credentials in Okta

Step-by-step guide for creating the integration in the online academy